CSO Online

VMware fixes command injection flaw in Aria Operations

Two other flaws were patched by the virtualization vendor, impacting Cloud Foundation, Telco Cloud Platform, and Telco Cloud Infrastructure as well.
Threat Post

Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending

VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One. The U.S. Cybersecurity and Infrastructure ...
Bleeping Computer

UNC3886 hackers use Linux rootkits to hide on VMware ESXi VMs

Rootkitting VMware ESXi VMs Mandiant says the threat actors breach VMware ESXi VMs and install open-source rootkits to maintain access for long-term operations. A rootkit is malicious software that ...
Threat Post

VMware Rolls a Fix for Formerly Critical Zero-Day Bug

VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” VMware has patched a zero-day bug that was disclosed in late November – an escalation-of ...
Virtualization Review

Hands On with VMware's New vmcli, 'A Mysterious Command'

While reading the release notes for VMware Workstation 17.6, I saw an interesting blurb under the What's New section titled "Introducing vmcli." [Click on image for larger view.] The introduction ...